CVE-2026-0383

CWE-78OS Command Injection3 documents3 sources
Severity
8.2HIGH
EPSS
0.0%
top 98.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Broadcom Fabric Operating SystemBrocade Fabric OS
Timeline
PublishedFeb 3

Description

A vulnerability in Brocade Fabric OS could allow an authenticated, local attacker with privileges to access the Bash shell to access insecurely stored file contents including the history command.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

Affected Packages2 packages

CVEListV5brocade/fabric_osbefore 9.2.1c2, 9.2.2 through 9.2.2a and 10.0.0
NVDbroadcom/fabric_operating_system9.2.29.2.2b+2

🔴Vulnerability Details

2
GHSA
GHSA-jqcf-6mg8-wxx4: A vulnerability in Brocade Fabric OS could allow an authenticated, local attacker with privileges to access the Bash shell to access insecurely stored2026-02-03
CVEList
Information disclosure in Brocade Fabric OS before 9.2.1c2, 9.2.2 through 9.2.2a and 10.0.02026-02-03
CVE-2026-0383 (HIGH CVSS 8.2) | A vulnerability in Brocade Fabric O | cvebase.io